Доброго времени суток!
имеются две ВМ:
1) Samba AD DC на Astra Linux
DNS бэкэнд BIND9_DLZ
конфиг smb.conf
[global]
netbios name = ADDC
realm = TEST.LOCAL
server role = active directory domain controller
server services = s3fs, rpc, nbt, wrepl, ldap, cldap, kdc, drepl, winbindd, ntp_signd, kcc, dnsupdate
workgroup = TEST
idmap_ldb:use rfc2307 = yes
template shell = /bin/bash
winbind use default domain = true
winbind offline logon = false
winbind nss info = rfc2307
winbind enum users = yes
winbind enum groups = yes
log file = /var/log/samba/%m.log
log level = 3
ldap server require strong auth = no
allow dns updates = nonsecure
allow dcerpc auth level connect = yes
[netlogon]
path = /var/lib/samba/sysvol/test.local/scripts
read only = No
[sysvol]
path = /var/lib/samba/sysvol
read only = No
2) клиент на Alt Linux 10 Сервер
/etc/hosts
127.0.0.1 localhost.localdomain localhost
::1 localhost6.localdomain localhost6
127.0.0.1 client04.test.local client04
10.0.2.103 client04.test.local client04
/etc/resolv.conf
search test.local
nameserver 10.0.2.4
[root@client04 ~]# systemctl status avahi-daemon
○ avahi-daemon.service - Avahi mDNS/DNS-SD Stack
Loaded: loaded (/lib/systemd/system/avahi-daemon.service; disabled; vendor preset: enabled)
Active: inactive (dead)
TriggeredBy: ○ avahi-daemon.socket
[root@client04 ~]# getent hosts client04
127.0.0.1 client04.test.local client04 client04
10.0.2.103 client04.test.local client04 client04
При попытке ввести в домен Samba AD DC (test.local)
командой:
system-auth write ad test.local client04 test 'administrator' 'Password'
получаю результат:
Using short domain name -- TEST
Joined 'CLIENT04' to dns domain 'test.local'
DNS update failed!
При этом ВМ client04 в домен test.local вводится, но не регистрируется запись A в DNS
При вводе в домен с ключом -d
system-auth write ad test.local client04 test 'administrator' 'Password' -d
+ set_hostname client04.test.local
++ lower client04.test.local
++ tr '[[:upper:]]' '[[:lower:]]'
++ echo -n client04.test.local
+ local FQDN=client04.test.local
+ '[' -n client04.test.local ']'
+ shell_config_set /etc/sysconfig/network HOSTNAME client04.test.local
+ '[' 3 -ge 3 ']'
+ '[' 3 -le 5 ']'
+ local file=/etc/sysconfig/network name=HOSTNAME value=client04.test.local r_delim== w_delim==
+ local n v nv= created=
+ '[' '!' -f /etc/sysconfig/network ']'
+ '[' -z '' ']'
+ quote_sed_regexp_variable n HOSTNAME
+ local __quote_set_regexp_variable_var __quote_set_regexp_variable_out
+ __quote_set_regexp_variable_var=n
+ shift
+ __quote_set_regexp_variable_out=HOSTNAME
+ '[' -z HOSTNAME ']'
+ eval 'n="$__quote_set_regexp_variable_out"'
++ n=HOSTNAME
++ grep -m1 '^[[:space:]]*HOSTNAME=' -- /etc/sysconfig/network
+ v=HOSTNAME=client04.test.local
+ '[' client04.test.local '!=' client04.test.local ']'
+ return
+ /usr/bin/net ads join '-Uadministrator%Password' --no-dns-updates
Using short domain name -- TEST
Joined 'CLIENT04' to dns domain 'test.local'
+ '[' 0 -ne 0 ']'
+ '[' -n client04 ']'
+ /usr/bin/net ads dns register '-Uadministrator%Password' client04.test.local
DNS update failed!
+ kdestroy
Так понимаю что проблема создания DNS записи как то связана с параметром --no-dns-updates при net ads join
Подскажите как можно решить/продиагностировать проблему?